extensive changes to Authenticator

* Introduced the new `Authenticator` class with the new classmethods
`from_login` and `from_file`.

* FileAuthenticator and LoginAuthenticator are deprecated. They will
instantiate the new `Authenticator` instead a class of its own for now.

Author: mkb79

docs/source/auth/authentication.rst

@@ -1,92 +1,92 @@
-==============
-Authentication
-==============
-
-API Authentication
-==================
-
-Audible uses the `sign request` or the `bearer` method to authenticate the
-requests to the Audible API.
-
-The authentication is done automatically when using the :class:`audible.LoginAuthenticator`
-or :class:`audible.FileAuthenticator`. Simply use an ``Authenticator`` with
-the :class:`audible.Client` or :class:`audible.AsyncClient` like so::
-
-   auth = audible.FileAuthenticator(...)
-   client = audible.Client(auth=auth)
-
-The Authenticator will try to use the sign request method if available.
-Otherwise the Authenticator will try the bearer method. If no method is
-available an exception is raised.
-
-Sign request method
--------------------
-
-With the sign request method you gain unrestricted access to the Audible API.
-To use this method, you need the RSA private key and the adp_token from a
-*device registration*. This method is used by the Audible apps for iOS and
-Android too.
-
-Request signing is fairly straight-forward and uses a signed SHA256 digest.
-Headers look like::
-
-   x-adp-alg: SHA256withRSA:1.0
-   x-adp-signature: AAAAAAAA...:2019-02-16T00:00:01.000000000Z,
-   x-adp-token: {enc:...}
-
-Bearer method
--------------
-
-API requests with the bearer method are restricted. Some API call like the
-:http:post:`/1.0/content/(string:asin)/licenserequest` doesn't work. To use
-the bearer method you need an access token and a client id. You receive the
-token after an authorization or device registration. Which values are valid
-for the client-id is unknown but 0 does work. An access token expires after
-60 minutes. It can be renewed with a refresh token. A refresh token is obtained
-by a device registration only. Headers for the bearer method look like::
-
-   Authorization: Bearer Atna|...
-   client-id: 0
-
-Website Authentication
-======================
-
-To authenticate website requests you need the website cookies received from an
-authorization or device registration.
-
-You can use the website cookies from an ``Authenticator`` with a
-:class:`httpx.Client` or :class:`httpx.AsyncClient` like so::
-
-   auth = audible.FileAuthenticator(...)
-   with httpx.Client(cookies=auth.website_cookies) as client:
-       resp = client.get("https://www.amazon.com/cpe/yourpayments/wallet?ref_=ya_d_c_pmt_mpo")
-       resp = client.get("https://www.audible.com")
-
-.. note::
-
-   Website cookies are limited to the scope of a top level domain
-   (e.g. com, de, ...). To set website cookies for another top level domain
-   scope, you can call ``auth.set_website_cookies_for_country(COUNTRY_CODE)``.
-
-.. warning::
-
-   Set website cookies for another country will override the old ones. If you
-   want to keep the new cookies, please make sure to save your authentication data.
-
-Using Postman for authentication
-================================
-
-`Postman <https://www.postman.com>`_ is a helpful utility to test API's.
-
-To use Postman with the Audible API, every request needs to be authenticated.
-You can use the bearer method (with his limitions) with Postman out of the box.
-
-Using the sign request method with Postman is possible, but needs some extra work.
-
-HOWTO:
-
-1. Install the `postman_util_lib <https://joolfe.github.io/postman-util-lib/>`_
-2. Copy the content from the :download:`pre-request-script <../../../utils/postman/pm_pre_request.js>` 
-   into the `Pre-request Scripts` Tab for the Collection or request
-3. Create an Environment and define the variables `adp-token` and `private key`
-   with the counterparts from the authentication data file
+==============
+Authentication
+==============
+
+API Authentication
+==================
+
+Audible uses the `sign request` or the `bearer` method to authenticate the
+requests to the Audible API.
+
+The authentication is done automatically when using the 
+:class:`audible.Authenticator`. Simply use the ``Authenticator`` with
+the :class:`audible.Client` or :class:`audible.AsyncClient` like so::
+
+   auth = audible.Authenticator.from_file(...)
+   client = audible.Client(auth=auth)
+
+The Authenticator will try to use the sign request method if available.
+Otherwise the Authenticator will try the bearer method. If no method is
+available an exception is raised.
+
+Sign request method
+-------------------
+
+With the sign request method you gain unrestricted access to the Audible API.
+To use this method, you need the RSA private key and the adp_token from a
+*device registration*. This method is used by the Audible apps for iOS and
+Android too.
+
+Request signing is fairly straight-forward and uses a signed SHA256 digest.
+Headers look like::
+
+   x-adp-alg: SHA256withRSA:1.0
+   x-adp-signature: AAAAAAAA...:2019-02-16T00:00:01.000000000Z,
+   x-adp-token: {enc:...}
+
+Bearer method
+-------------
+
+API requests with the bearer method are restricted. Some API call like the
+:http:post:`/1.0/content/(string:asin)/licenserequest` doesn't work. To use
+the bearer method you need an access token and a client id. You receive the
+token after an authorization or device registration. Which values are valid
+for the client-id is unknown but 0 does work. An access token expires after
+60 minutes. It can be renewed with a refresh token. A refresh token is obtained
+by a device registration only. Headers for the bearer method look like::
+
+   Authorization: Bearer Atna|...
+   client-id: 0
+
+Website Authentication
+======================
+
+To authenticate website requests you need the website cookies received from an
+authorization or device registration.
+
+You can use the website cookies from an ``Authenticator`` with a
+:class:`httpx.Client` or :class:`httpx.AsyncClient` like so::
+
+   auth = audible.Authenticator.from_file(...)
+   with httpx.Client(cookies=auth.website_cookies) as client:
+       resp = client.get("https://www.amazon.com/cpe/yourpayments/wallet?ref_=ya_d_c_pmt_mpo")
+       resp = client.get("https://www.audible.com")
+
+.. note::
+
+   Website cookies are limited to the scope of a top level domain
+   (e.g. com, de, ...). To set website cookies for another top level domain
+   scope, you can call ``auth.set_website_cookies_for_country(COUNTRY_CODE)``.
+
+.. warning::
+
+   Set website cookies for another country will override the old ones. If you
+   want to keep the new cookies, please make sure to save your authentication data.
+
+Using Postman for authentication
+================================
+
+`Postman <https://www.postman.com>`_ is a helpful utility to test API's.
+
+To use Postman with the Audible API, every request needs to be authenticated.
+You can use the bearer method (with his limitions) with Postman out of the box.
+
+Using the sign request method with Postman is possible, but needs some extra work.
+
+HOWTO:
+
+1. Install the `postman_util_lib <https://joolfe.github.io/postman-util-lib/>`_
+2. Copy the content from the :download:`pre-request-script <../../../utils/postman/pm_pre_request.js>` 
+   into the `Pre-request Scripts` Tab for the Collection or request
+3. Create an Environment and define the variables `adp-token` and `private key`
+   with the counterparts from the authentication data file

docs/source/auth/authorization.rst

@@ -18,7 +18,7 @@ minutes. After expiration you have to authorize again to obtain a new one.
 Authorization
 =============
 
-For an example how to authorization please take a look at :ref:`hello_library`.
+For an example how to authorize please take a look at :ref:`hello_library`.
 
 CAPTCHA
 -------
@@ -40,7 +40,7 @@ external service), like so::
 
        return "My answer for CAPTCHA"
 
-   auth = audible.LoginAuthenticator(
+   auth = audible.Authenticator.from_login(
        ...
        captcha_callback=custom_captcha_callback
    )
@@ -61,7 +61,7 @@ A custom callback can be provided, like so::
 
        return "My answer for otp code"
 
-   auth = audible.LoginAuthenticator(
+   auth = audible.Authenticator.from_login(
        ...
        otp_callback=custom_otp_callback
    )
@@ -83,7 +83,7 @@ A custom callback can be provided, like so::
 
        return "My answer for cvf code"
 
-   auth = audible.LoginAuthenticator(
+   auth = audible.Authenticator.from_login(
        ...
        cvf_callback=custom_cvf_callback
    )

docs/source/auth/register.rst

@@ -15,7 +15,7 @@ successfully authorization.
 
 To authorize and register a new device in one step you can do::
 
-   auth = audible.LoginAuthenticator(
+   auth = audible.Authenticator.from_login(
        username,
        password,
        locale=country_code,
@@ -36,7 +36,8 @@ Deregister
 ==========
 
 Authentication data obtained by a device registration are valid until
-deregister. Call ``auth.deregister_device()`` the current used device.
+deregister. Call ``auth.deregister_device()`` to deregister the current used 
+device.
 
 Call ``auth.deregister_device(deregister_all=True)`` to deregister **ALL**
 Audible devices. This function is helpful to remove hanging slots. This can

docs/source/intro/getting_started.rst

@@ -22,7 +22,7 @@ all known Audible marketplaces and associated country codes you can find at
 
    import audible
    
-   auth = audible.LoginAuthenticator(
+   auth = audible.Authenticator.from_login(
        USERNAME,
        PASSWORD,
        locale=COUNTRY_CODE
@@ -88,5 +88,5 @@ registration with::
 
 And load the data from file to reuse it later with::
 
-   auth = audible.FileAuthenticator(FILENAME)
+   auth = audible.Authenticator.from_file(FILENAME)
 

docs/source/misc/advanced.rst

@@ -85,10 +85,10 @@ Switch User
 If you work with multiple users you can do this::
 
    # instantiate 1st user
-   auth = audible.FileAuthenticator(FILENAME)
+   auth = audible.Authenticator.from_file(FILENAME)
 
    # instantiate 2nd user
-   auth2 = audible.FileAuthenticator(FILENAME2)
+   auth2 = audible.Authenticator.from_file(FILENAME2)
 
    # instantiate client with 1st user
    client = audible.AudibleAPI(auth)
@@ -104,19 +104,31 @@ If you work with multiple users you can do this::
 Misc
 ----
 
-The underlying Authenticator class can be accessed via the `auth` attribute.
+The underlying Authenticator can be accessed via the `auth` attribute.
 
 Authenticator classes
 =====================
 
-There are two Authenticator classes. The ``LoginAuthenticator`` 
-and the ``FileAuthenticator``. Both derive from ``BaseAuthenticator``. 
+.. deprecated:: v0.5.0
 
-The ``LoginAuthenticator`` is used to authorize an user and then authenticate
-requests with the received data. The ``FileAuthenticator`` is used to load
+   The ``LoginAuthenticator`` and the ``FileAuthenticator``
+
+.. versionchanged:: v0.5.0
+
+   The ``LoginAuthenticator`` and the ``FileAuthenticator`` now instantiate the
+   the new :class:`Authenticator` instead a class of its own. 
+
+.. versionadded:: v0.5.0
+
+   The :class:`Authenticator` with the  classmethods ``from_file`` and 
+   ``from_login``
+
+The :meth:`Authenticator.from_login` classmethod is used to authorize 
+an user and then authenticate requests with the received data. The 
+:meth:`Authenticator.from_file` classmethod is used to load
 previous saved authentication data.
 
-With an Authenticator class you can:
+With an Authenticator you can:
 
 - Save credentials to file with ``auth.to_file()``
 - Register a device with ``auth.register_device()`` after a fresh authorization.
@@ -138,10 +150,11 @@ Or to check the time left before token expires::
 Activation Bytes
 ================
 
-Since v0.4.0 this app can get activation bytes. 
+.. versionadded:: v0.4.0
+
+   Get activation bytes
 
-To retrieve activation bytes an authentication via :class:`LoginAuthenticator`
-or :class:`FileAuthenticator` is needed.
+To retrieve activation bytes an authentication :class:`Authenticator` is needed.
 
 The Activation bytes can be obtained like so::
 
@@ -170,7 +183,7 @@ are missing in the provided link. As a workaround you can do::
    import httpx
    
    asin = ASIN_FROM_BOOK
-   auth = audible.FileAuthenticator(...)  # or LoginAuthenticator
+   auth = audible.Authenticator.from_file(...)  # or Authenticator.from_login
    tld = auth.locale.domain
 
    with httpx.Client(auth=auth) as client:
@@ -200,4 +213,4 @@ To decrypt the license response you can do::
    to open servers, torrents, or other methods of mass distribution. No help
    will be given to people doing such things. Authors, retailers, and
    publishers all need to make a living, so that they can continue to produce
-   audiobooks for us to hear, and enjoy. Don't be a parasite.
+   audiobooks for us to hear, and enjoy. Don't be a parasite.

docs/source/misc/examples.rst

@@ -9,7 +9,7 @@ Print number of books for every marketplace::
 
    import audible
    
-   auth = audible.FileAuthenticator(filename)
+   auth = audible.Authenticator.from_file(filename)
    client = audible.Client(auth)
    country_codes = ["de", "us", "ca", "uk", "au", "fr", "jp", "it", "in"]
 

docs/source/misc/load_save.rst

@@ -11,7 +11,7 @@ Authentication data can be saved any time to file like so::
 
 And can then be reused later like so::
 
-   auth = audible.FileAuthenticator(FILENAME)
+   auth = audible.Authenticator.from_file(FILENAME)
 
 .. note::
 
@@ -44,7 +44,7 @@ Or in bytes style like so::
 When loading data from file, encryption style is auto detected. These files can
 be loaded like so::
 
-   auth = audible.FileAuthenticator(
+   auth = audible.Authenticator.from_file(
        FILENAME,
        PASSWORD
    )
@@ -80,7 +80,7 @@ Advanced use of encryption/decryption
 
 When saving authentication data, additional options can be provided with
 ``auth.to_file(..., **kwargs)``. This data can be loaded with
-``auth = audible.FileAuthenticator(..., **kwargs)``.
+``auth = audible.Authenticator.from_file(..., **kwargs)``.
 
 Following options are supported:
 
@@ -115,8 +115,8 @@ Remove encryption
 =================
 
 To remove encryption from file (or save as new file) simply load the encrypted
-file with the :class:`~audible.FileAuthenticator` and save the data
-unencrypted. If the `FileAuthenticator` can't load your data, you can try::
+file with :meth:`audible.Authenticator.from_file` and save the data
+unencrypted. If the `Authenticator` can't load your data, you can try::
 
    from audible.aescipher import remove_file_encryption
 

examples/async.py

@@ -51,7 +51,7 @@ async def main(auth):
 if __name__ == "__main__":
     # authenticate with login
     # don't stores any credentials on your system
-    auth = audible.LoginAuthenticator(
+    auth = audible.Authenticator.from_login(
         "USERNAME",
         "PASSWORD",
         locale="us"
@@ -73,7 +73,7 @@ async def main(auth):
     auth.to_file()
 
     # load credentials from file
-    auth = audible.FileAuthenticator(
+    auth = audible.Authenticator.from_file(
         filename="FILENAME",
         password="PASSWORD"
     )

examples/download_books_aax.py

@@ -56,7 +56,7 @@ def download_file(url):
 if __name__ == "__main__":
     password = input("Password for file: ")
 
-    auth = audible.FileAuthenticator(
+    auth = audible.Authenticator.from_file(
         filename="FILENAME",
         password=password
     )

examples/download_books_aaxc.py

@@ -45,7 +45,7 @@ def download_file(url, filename):
 if __name__ == "__main__":
     password = input("Password for file: ")
 
-    auth = audible.FileAuthenticator(
+    auth = audible.Authenticator.from_file(
         filename="FILENAME",
         password=password
     )

examples/get_activation_bytes.py

@@ -1,17 +1,17 @@
-import audible
+from audible import Authenticator
 
 # needs at least audible v0.4.0
 
 # if you have a valid auth file already
 password = input("Password for file: ")
-auth = audible.FileAuthenticator(
+auth = Authenticator.from_file(
     filename="FILENAME",
     password=password
 )
 
 
 # or use LoginAuthenticator (without register)
-auth = audible.LoginAuthenticator(
+auth = Authenticator.from_login(
     username="USERNAME",
     password="PASSWORD",
     locale="YOUR_COUNTRY_CODE",

examples/sync.py

@@ -77,11 +77,11 @@ def get_download_link(asin, quality="Extreme"):
 
 if __name__ == "__main__":
     password = input("Password for file: ")
-
-    auth = audible.FileAuthenticator(
+    auth = audible.Authenticator.from_file(
         filename="FILENAME",
         password=password
     )
-    client = audible.AudibleAPI(auth)
+    client = audible.Client(auth)
+
     link = get_download_link("BOOK_ASIN")
     print(link)

src/audible/__init__.py

@@ -1,12 +1,12 @@
 # -*- coding: utf-8 -*-
 
 from .client import Client, AsyncClient
-from .auth import LoginAuthenticator, FileAuthenticator
+from .auth import Authenticator, LoginAuthenticator, FileAuthenticator
 from ._logging import log_helper
 from audible._version import __version__
 
 
 __all__ = [
-    "__version__", "LoginAuthenticator", "FileAuthenticator",
+    "__version__", "LoginAuthenticator", "FileAuthenticator", "Authenticator",
     "log_helper", "Client", "AsyncClient"
 ]

src/audible/aescipher.py

@@ -260,8 +260,8 @@ def _decrypt_voucher(device_serial_number, customer_id, device_type, asin, vouch
 def decrypt_voucher_from_licenserequest(auth, license_response):
     """Decrypt the voucher from licenserequest response
 
-    :param auth: An instance of an `Authenticator` clsss
-    :type auth: audible.FileAuthenticator, audible.LoginAuthenticator
+    :param auth: An instance of an `Authenticator`
+    :type auth: audible.Authenticator
     :param license_response: The response content from a successful http 
         `POST` request to api endpoint /1.0/content/{asin}/licenserequest
     :type license_response: dict

src/audible/auth.py

@@ -130,7 +130,7 @@ def sign_request(
     }
 
 
-class BaseAuthenticator(MutableMapping, httpx.Auth):
+class Authenticator(MutableMapping, httpx.Auth):
     """Base Class for retrieve and handle credentials."""
 
     requires_request_body = True
@@ -162,6 +162,88 @@ def __len__(self):
     def __repr__(self):
         return f"{type(self).__name__}({self.__dict__})"
 
+    @classmethod
+    def from_file(
+        cls, filename, password=None, locale=None, encryption=None, **kwargs
+    ) -> "Authenticator":
+        """Instantiate a new Authenticator with authentication data from file
+
+        .. versionadded:: v0.5.0
+        """
+        cls = cls()
+        cls.filename = filename
+        cls.encryption = encryption or detect_file_encryption(cls.filename)
+
+        if cls.encryption:
+            if password is None:
+                message = "File is encrypted but no password provided."
+                logger.critical(message)
+                raise FileEncryptionError(message)
+            cls.crypter = AESCipher(password, **kwargs)
+            file_data = cls.crypter.from_file(cls.filename, cls.encryption)
+        else:
+            file_data = cls.filename.read_text()
+
+        json_data = json.loads(file_data)
+
+        locale_code = json_data.pop("locale_code", None)
+        locale = locale or locale_code
+        cls.locale = locale
+
+        # login cookies where renamed to website cookies
+        # old names must be adjusted
+        login_cookies = json_data.pop("login_cookies", None)
+        if login_cookies:
+            json_data["website_cookies"] = login_cookies
+
+        cls.update(**json_data)
+
+        logger.info(
+            (
+                f"load data from file {cls.filename} for "
+                f"locale {cls.locale.country_code}"
+            )
+        )
+        return cls
+
+    @classmethod
+    def from_login(
+        cls,
+        username: str,
+        password: str,
+        locale,
+        register=False,
+        captcha_callback=None,
+        otp_callback=None,
+        cvf_callback=None
+    ) -> "Authenticator":
+        """Instantiate a new Authenticator with authentication data from login
+
+        .. versionadded:: v0.5.0
+        """
+        cls = cls()
+        cls.locale = locale
+
+        resp = login(
+            username=username,
+            password=password,
+            country_code=cls.locale.country_code,
+            domain=cls.locale.domain,
+            market_place_id=cls.locale.market_place_id,
+            captcha_callback=captcha_callback,
+            otp_callback=otp_callback,
+            cvf_callback=cvf_callback
+        )
+
+        logger.info(f"logged in to audible as {username}")
+
+        if register:
+            resp = register_(resp["access_token"], cls.locale.domain)
+            logger.info("registered audible device")
+
+        cls.update(**resp)
+        return cls
+
     def auth_flow(self, request: httpx.Request):
         available_modes = self.available_auth_modes
 
@@ -377,79 +459,48 @@ def access_token_expired(self):
         return datetime.fromtimestamp(self.expires) <= datetime.utcnow()
 
 
-class LoginAuthenticator(BaseAuthenticator):
-    """Authenticator class to retrieve credentials from login."""
+class LoginAuthenticator:
+    """Authenticator class to retrieve credentials from login.
+    
+    .. deprecated:: v0.5.0
+    
+       Use :classmethod:`audible.auth.Authenticator.from_login` instead.
 
-    def __init__(
-            self,
+    """
+
+    def __new__(
+            cls,
             username: str,
             password: str,
             locale,
             register=False,
             captcha_callback=None,
             otp_callback=None,
             cvf_callback=None
-    ):
-        self.locale = locale
-
-        resp = login(
-            username=username,
-            password=password,
-            country_code=self.locale.country_code,
-            domain=self.locale.domain,
-            market_place_id=self.locale.market_place_id,
-            captcha_callback=captcha_callback,
-            otp_callback=otp_callback,
-            cvf_callback=cvf_callback
-        )
-
-        logger.info(f"logged in to audible as {username}")
-
-        if register:
-            resp = register_(resp["access_token"], self.locale.domain)
-            logger.info("registered audible device")
+    ) -> Authenticator:
+        return Authenticator.from_login(
+            username,
+            password,
+            locale,
+            register,
+            captcha_callback,
+            otp_callback,
+            cvf_callback)
 
-        self.update(**resp)
 
+class FileAuthenticator:
+    """Authenticator class to retrieve credentials from stored file.
+    
+    .. deprecated:: v0.5.0
+    
+       Use :classmethod:`audible.auth.Authenticator.from_file` instead.
 
-class FileAuthenticator(BaseAuthenticator):
-    """Authenticator class to retrieve credentials from stored file."""
+    """
 
-    def __init__(
-            self, filename, password=None, locale=None, encryption=None,
+    def __new__(
+            cls, filename, password=None, locale=None, encryption=None,
             **kwargs
-    ) -> None:
+    ) -> Authenticator:
 
-        self.filename = filename
-        self.encryption = encryption or detect_file_encryption(self.filename)
-
-        if self.encryption:
-            if password is None:
-                message = "File is encrypted but no password provided."
-                logger.critical(message)
-                raise FileEncryptionError(message)
-            self.crypter = AESCipher(password, **kwargs)
-            file_data = self.crypter.from_file(self.filename, self.encryption)
-        else:
-            file_data = self.filename.read_text()
-
-        json_data = json.loads(file_data)
-
-        locale_code = json_data.pop("locale_code", None)
-        locale = locale or locale_code
-        self.locale = locale
-
-        # login cookies where renamed to website cookies
-        # old names must be adjusted
-        login_cookies = json_data.pop("login_cookies", None)
-        if login_cookies:
-            json_data["website_cookies"] = login_cookies
-
-        self.update(**json_data)
-
-        logger.info(
-            (
-                f"load data from file {self.filename} for "
-                f"locale {self.locale.country_code}"
-            )
-        )
+        return Authenticator.from_file(
+            filename, password, locale, encryption, **kwargs)

src/audible/client.py

@@ -1,11 +1,11 @@
 import json
 import logging
-from typing import Union, Optional
+from typing import Optional
 
 import httpx
 from httpx import URL
 
-from .auth import LoginAuthenticator, FileAuthenticator
+from .auth import Authenticator
 from .exceptions import (
     BadRequest, NotFoundError, NotResponding, NetworkError, ServerError,
     Unauthorized, UnexpectedError, RatelimitError, RequestError
@@ -30,8 +30,7 @@ class Client:
 
     def __init__(
             self,
-            auth: Optional[
-                Union[LoginAuthenticator, FileAuthenticator]] = None,
+            auth: Authenticator = None,
             country_code: Optional[str] = None,
             timeout: int = 10
     ):
@@ -78,7 +77,7 @@ def auth(self):
 
     def switch_user(
             self,
-            auth: Union[LoginAuthenticator, FileAuthenticator],
+            auth: Authenticator,
             switch_to_default_marketplace: bool = False
     ):
         if switch_to_default_marketplace: